sequelize-7
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): The skill serves as a static documentation resource. No evidence of malicious behavior or security risks was found across the 10 threat categories.
- [EXTERNAL_DOWNLOADS] (SAFE): The skill references standard NPM packages from the '@sequelize' scope (e.g., @sequelize/core, @sequelize/postgres). These are well-known, legitimate libraries for Node.js development.
- [DATA_EXFILTRATION] (SAFE): Connection examples use standard placeholder values ('user', 'pass', 'localhost', 'mydb') typically found in documentation. No hardcoded secrets or unauthorized network operations were identified.
- [COMMAND_EXECUTION] (SAFE): Installation commands (npm i) are provided as instructions for the developer and are not executed by the agent itself in a malicious context.
Audit Metadata